Lucene search
K
UbuntucveMost viewed

68528 matches found

UbuntuCve
UbuntuCve
•added 2019/01/09 12:0 a.m.•43 views

CVE-2019-5747

An issue was discovered in BusyBox through 1.30.0. An out of bounds read in udhcp components consumed by the DHCP client, server, and/or relay might allow a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to assurance of a 4-byte...

7.5CVSS7.1AI score0.04651EPSS
Exploits2References2
UbuntuCve
UbuntuCve
•added 2018/12/31 7:29 p.m.•43 views

CVE-2018-6334

Multipart-file uploads call variables to be improperly registered in the global scope. In cases where variables are not declared explicitly before being used this can lead to unexpected behavior. This affects all supported versions of HHVM prior to the patch 3.25.1, 3.24.5, and 3.21.9 and below...

9.8CVSS7.2AI score0.01913EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/12/31 12:0 a.m.•43 views

CVE-2018-25012

A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24...

9.1CVSS7.3AI score0.02051EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/12/11 12:0 a.m.•43 views

CVE-2018-20060

urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted in cleartext...

9.8CVSS6.8AI score0.04488EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/09/30 8:29 p.m.•43 views

CVE-2018-17794

An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31. There is a NULL pointer dereference in workstuffcopytofrom when called from iteratedemanglefunction...

6.5CVSS6.9AI score0.01803EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/09/25 5:0 p.m.•43 views

CVE-2018-14634

An integer overflow flaw was found in the Linux kernel's createelftables function. An unprivileged local user with access to SUID or otherwise privileged binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable...

7.8CVSS7.2AI score0.14806EPSS
Exploits6References6
UbuntuCve
UbuntuCve
•added 2018/09/13 7:29 p.m.•43 views

CVE-2018-17019

In Bro through 2.5.5, there is a DoS in IRC protocol names command parsing in analyzer/protocol/irc/IRC.cc...

7.5CVSS7.1AI score0.01399EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/09/01 10:29 p.m.•43 views

CVE-2018-16328

In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c...

9.8CVSS6.8AI score0.02032EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/08/27 12:0 a.m.•43 views

CVE-2018-10938

A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipsov4optptr function in net/ipv4/cipsoipv4.c leading to a denial-of-service. A certain non-default...

7.1CVSS6.7AI score0.04997EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2018/08/14 12:29 p.m.•43 views

CVE-2016-4975

Possible CRLF injection allowing HTTP response splitting attacks for sites which use moduserdir. This issue was mitigated by changes made in 2.4.25 and 2.2.32 which prohibit CR or LF injection into the "Location" or other outbound header key or value. Fixed in Apache HTTP Server 2.4.25 Affected...

6.1CVSS6.6AI score0.19798EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/08/03 12:0 a.m.•43 views

CVE-2018-14883

An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. An Integer Overflow leads to a heap-based buffer over-read in exifthumbnailextract of exif.c...

7.5CVSS6.8AI score0.08975EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2018/08/02 3:29 p.m.•43 views

CVE-2017-9120

PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a long string because of an Integer overflow in mysqlirealescapestring...

9.8CVSS6.9AI score0.07562EPSS
Exploits1References4
UbuntuCve
UbuntuCve
•added 2018/07/30 2:29 p.m.•43 views

CVE-2016-9597

It was found that Red Hat JBoss Core Services erratum RHSA-2016:2957 for CVE-2016-3705 did not actually include the fix for the issue found in libxml2, making it vulnerable to a Denial of Service attack due to a Stack Overflow. This is a regression CVE for the same issue as CVE-2016-3705...

7.5CVSS7.1AI score0.04484EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2018/06/26 4:29 p.m.•43 views

CVE-2018-1000548

Umlet version 14.3 contains a XML External Entity XXE vulnerability in File parsing that can result in disclosure of confidential data, denial of service, server side request forgery. This attack appear to be exploitable via Specially crafted UXF file. This vulnerability appears to have been fixe...

7.8CVSS7.1AI score0.01317EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/06/26 12:0 a.m.•43 views

CVE-2018-1000204

Linux Kernel version 3.18 to 4.16 incorrectly handles an SGIO ioctl on /dev/sg0 with dxferdirection=SGDXFERFROMDEV and an empty 6-byte cmdp. This may lead to copying up to 1000 kernel heap pages to the userspace. This has been fixed upstream in...

6.3CVSS6.5AI score0.01912EPSS
Exploits0References8
UbuntuCve
UbuntuCve
•added 2018/05/10 12:0 a.m.•43 views

CVE-2018-5158

The PDF viewer does not sufficiently sanitize PostScript calculator functions, allowing malicious JavaScript to be injected through a crafted PDF file. This JavaScript can then be run with the permissions of the PDF viewer by its worker. This vulnerability affects Firefox ESR 52.8 and Firefox 60...

8.8CVSS7.2AI score0.10576EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/05/09 12:0 a.m.•43 views

CVE-2018-10940

The cdromioctlmediachanged function in drivers/cdrom/cdrom.c in the Linux kernel before 4.16.6 allows local attackers to use a incorrect bounds check in the CDROM driver CDROMMEDIACHANGED ioctl to read out kernel memory...

5.5CVSS6.8AI score0.0054EPSS
Exploits0References7
UbuntuCve
UbuntuCve
•added 2018/04/24 7:29 p.m.•43 views

CVE-2017-12102

An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

8.8CVSS7.5AI score0.01824EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2018/04/18 12:0 a.m.•43 views

CVE-2018-2797

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JMX. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS6.2AI score0.078EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2018/02/08 12:0 a.m.•43 views

CVE-2018-1000030

Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. Python versions prior to 2.7.14 may also be vulnerable and it appears that Python 2.7.17 and prior may also be vulnerable however this has not been confirmed. The vulnerability lies when multiply threads are...

3.6CVSS6.7AI score0.01253EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2018/01/31 12:0 a.m.•43 views

CVE-2017-16913

The "stubrecvcmdsubmit" function drivers/usb/usbip/stubrx.c in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMDSUBMIT packets allows attackers to cause a denial of service arbitrary memory allocation via a specially crafted USB over IP packet...

7.1CVSS6.8AI score0.03896EPSS
Exploits0References11
UbuntuCve
UbuntuCve
•added 2018/01/30 8:29 p.m.•43 views

CVE-2011-2902

zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files insecurely, which allows remote attackers to delete arbitrary files via a crafted .pdf.gz file name...

6.4CVSS6.2AI score0.01395EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2018/01/17 12:0 a.m.•43 views

CVE-2018-2582

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols...

6.5CVSS6.8AI score0.04736EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2018/01/17 12:0 a.m.•43 views

CVE-2018-2677

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u171, 7u161, 8u152 and 9.0.1; Java SE Embedded: 8u151. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS6.8AI score0.04675EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/12/13 12:0 a.m.•43 views

CVE-2017-1000409

A buffer overflow in glibc 2.5 released on September 29, 2006 and can be triggered through the LDLIBRARYPATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366...

7CVSS7.3AI score0.01208EPSS
Exploits5References3
UbuntuCve
UbuntuCve
•added 2017/12/05 12:0 a.m.•43 views

CVE-2017-17051

An issue was discovered in the default FilterScheduler in OpenStack Nova 16.0.3. By repeatedly rebuilding an instance with new images, an authenticated user may consume untracked resources on a hypervisor host leading to a denial of service, aka doubled resource allocations. This regression was...

8.6CVSS7.2AI score0.01973EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/11/22 7:29 p.m.•43 views

CVE-2017-12172

PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, 9.3.x before 9.3.20, and 9.2.x before 9.2.24 runs under a non-root operating system account, and database superusers have effective ability to run arbitrary code under that system account. PostgreSQL provid...

7.2CVSS7AI score0.00586EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2017/11/21 12:0 a.m.•43 views

CVE-2017-14746

Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request...

9.8CVSS7.2AI score0.09876EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/11/02 12:0 a.m.•43 views

CVE-2017-3736

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely...

6.5CVSS6.8AI score0.10133EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/10/19 11:29 p.m.•43 views

CVE-2017-15650

musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dnsparsecallback in network/lookupname.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query...

7.5CVSS7.3AI score0.02015EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2017/10/18 5:29 p.m.•43 views

CVE-2015-1239

Double free vulnerability in the j2kreadppmv3 function in OpenJPEG before r2997, as used in PDFium in Google Chrome, allows remote attackers to cause a denial of service process crash via a crafted PDF...

6.5CVSS6.9AI score0.01038EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2017/10/14 11:29 p.m.•43 views

CVE-2017-12629

Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the RunExecutableListener class. Elasticsearch, although it uses Lucene, is NOT vulnerable to this. Note that the XML extern...

9.8CVSS7.6AI score0.91896EPSS
Exploits11References4
UbuntuCve
UbuntuCve
•added 2017/08/24 12:0 a.m.•43 views

CVE-2017-12134

The xenbiovecphysmergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain sensitive memory information, cause a denial of service, or gain host OS privileges by leveraging incorrect block IO merge-ability...

8.8CVSS7.2AI score0.00497EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2017/08/20 8:29 p.m.•43 views

CVE-2017-12976

git-annex before 6.20170818 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, as demonstrated by an ssh://-eProxyCommand= URL, a related issue to CVE-2017-9800, CVE-2017-12836, CVE-2017-1000116, and CVE-2017-1000117...

8.8CVSS6.9AI score0.0267EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/08/10 5:0 p.m.•43 views

CVE-2017-1000112

Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSGMORE ipappenddata calls ipufoappenddata to append. However in between two send calls, the append path can be switched from UFO to non-UFO one, which leads to a memory corruption. In...

7CVSS6.7AI score0.20797EPSS
Exploits19References8
UbuntuCve
UbuntuCve
•added 2017/07/20 12:0 a.m.•43 views

CVE-2017-10115

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JCE. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability allows unauthenticated attacker with networ...

7.5CVSS6.8AI score0.02737EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/07/17 1:18 p.m.•43 views

CVE-2017-1000035

Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack...

6.1CVSS6.3AI score0.00888EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2017/06/21 12:0 a.m.•43 views

CVE-2017-9233

XML External Entity vulnerability in libexpat 2.2.0 and earlier Expat XML Parser Library allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD...

7.5CVSS7.1AI score0.09051EPSS
Exploits1References5
UbuntuCve
UbuntuCve
•added 2017/05/23 6:29 p.m.•43 views

CVE-2017-0374

lib/Config/Model.pm in Config-Model aka libconfig-model-perl before 2.102 allows local users to gain privileges via a crafted model in the current working directory, related to use of . with the INC array...

7.8CVSS7.1AI score0.00404EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/05/23 4:29 a.m.•43 views

CVE-2016-9841

inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic...

9.8CVSS7AI score0.07489EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2017/05/23 4:29 a.m.•43 views

CVE-2016-9842

The inflateMark function in inflate.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving left shifts of negative integers...

8.8CVSS7AI score0.05161EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2017/05/21 6:29 p.m.•43 views

CVE-2014-9970

jasypt before 1.9.2 allows a timing attack against the password hash comparison...

7.5CVSS6.8AI score0.02432EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2017/05/02 12:0 a.m.•43 views

CVE-2014-9940

The regulatorenagpiofree function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a denial of service use-after-free via a crafted application...

7.6CVSS6.8AI score0.01613EPSS
Exploits0References5
UbuntuCve
UbuntuCve
•added 2017/04/03 12:0 a.m.•43 views

CVE-2016-10317

The fillthreshholdbuffer function in base/gxhtthresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted PostScript document...

7.8CVSS7.1AI score0.02282EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2017/04/03 12:0 a.m.•43 views

CVE-2016-10217

The pdf14open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted file that is mishandled in the color management module...

5.5CVSS6.8AI score0.01459EPSS
Exploits1References2
UbuntuCve
UbuntuCve
•added 2017/02/06 12:0 a.m.•43 views

CVE-2017-5551

The simplesetacl function in fs/posixacl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions. NOT...

4.4CVSS6.8AI score0.00404EPSS
Exploits0References6
UbuntuCve
UbuntuCve
•added 2016/12/13 9:59 p.m.•43 views

CVE-2016-6663

Race condition in Oracle MySQL before 5.5.52, 5.6.x before 5.6.33, 5.7.x before 5.7.15, and 8.x before 8.0.1; MariaDB before 5.5.52, 10.0.x before 10.0.28, and 10.1.x before 10.1.18; Percona Server before 5.5.51-38.2, 5.6.x before 5.6.32-78-1, and 5.7.x before 5.7.14-8; and Percona XtraDB Cluster...

7CVSS7AI score0.04313EPSS
Exploits18References2
UbuntuCve
UbuntuCve
•added 2016/11/25 4:59 p.m.•43 views

CVE-2016-6753

An information disclosure vulnerability in kernel components, including the process-grouping subsystem and the networking subsystem, in Android before 2016-11-05 could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it...

5.5CVSS6.5AI score0.00477EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2016/10/10 10:59 a.m.•43 views

CVE-2015-8956

The rfcommsockbind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service NULL pointer dereference via vectors involving a bind system call on a Bluetooth RFCOMM socket...

6.1CVSS6.8AI score0.00223EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2016/09/11 9:59 p.m.•43 views

CVE-2016-3886

systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI Tuner in Android 7.0 before 2016-09-01 does not prevent tuner changes on the lockscreen, which allows physically proximate attackers to gain privileges by modifying a setting, aka internal bug 30107438...

7.2CVSS6.8AI score0.00198EPSS
Exploits0References3
Total number of security vulnerabilities5000